Vulnerabilities > CVE-2007-4532 - Remote Denial of Service vulnerability in Michal Marcinkowski Soldat Dedicated Server and Soldat Game Server

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

michal-marcinkowski

NVD

Published: 2007-08-25

Updated: 2018-10-15

Summary

Soldat game server 1.4.2 and earlier, and dedicated server 2.6.2 and earlier, allows remote attackers to cause a denial of service (client lockout) via a series of UDP join packets from a spoofed IP address, which triggers temporary blacklisting of this IP address.

Vulnerable Configurations

Part	Description	Count
Application	Michal_Marcinkowski Michal Marcinkowski Soldat Dedicated Server * Michal Marcinkowski Soldat Game Server *	2

References

http://aluigi.altervista.org/adv/soldatdos-adv.txt
http://aluigi.org/poc/soldatdos.zip
http://www.securityfocus.com/archive/1/477624/100/0/threaded
http://www.securityfocus.com/bid/25426
https://exchange.xforce.ibmcloud.com/vulnerabilities/36232